Hi Matt, Thanks for the information I was able to get .spdx output from below command line from fossologyspdx.ist.unomaha.edu server.
wget -qO - --no-check-certificate --post-file=./time-1.7.tar --timeout=0 "https://fossologyspdx.ist.unomaha.edu/?mod=spdx_license_once&noCopyright=false&jsonOutput=false&fullSPDXFlag=false&packageNameInLog=time-1.7.tar"; > time-1.7.tar.spdx On fresh Ubuntu 13.10 system, today I installed Fossology 2.4.0, with latest SPDX module as available from https://github.com/spdx-tools/fossology-spdx by downloading zip file on right hand side of the page. I wanted to try same command as above on localhost server,but I did not get any output of spdx in localhost. wget -qO - --no-check-certificate --post-file=./time-1.7.tar --timeout=0 "https://localhost/repo/?mod=spdx_license_once&noCopyright=false&jsonOutput=false&fullSPDXFlag=false&packageNameInLog=time-1.7.tar"; > time-1.7.tar.spdx Is there something I am missing here. I assume the latest spdx source is supporting [fullSPDXFlag]. Other general queries I do have are below. 1. Do you support fossology+spdx module as an package, which is easier to upgrade by sudo apt-get command? instead of everytime manually uninstall/installing the module. 2. Why fossology+spdx module does not have version information? Best regards Kotrappa. From: Matt Germonprez [mailto:[email protected]] Sent: Saturday, February 08, 2014 6:39 PM To: Gobeille, Robert Cc: Kotrappa DeverShetty (WT01 - Manufacturing & Hi Tech); [email protected]; Akanksha Singh (WT01 - Manufacturing & Hi Tech); Ravishankar T.S (WT01 - Manufacturing & Hi Tech) Subject: Re: [FOSSology] query regarding fossology+spdx command line support Hi Kotrappa, Liang Cao has added an option to generate a full SPDX document in TAG format from the command line. He has also provided a nice overview of how to work with the source. The source is pushed to here: https://github.com/spdx-tools/fossology-spdx/blob/master/src/spdx/ui/spdx_license_once.php The documentation is here: https://github.com/spdx-tools/fossology-spdx/wiki/Fossology-spdx-web-api The option for [fullSPDXFlag] is added. [fullSPDXFlag]: true/false. Only when this option is set to "true", low definition version of the full SPDX contents are output. Skipping this option equals setting it to "false." This option should be set to "true" when you want to generate an SPDX document from the command line. You could generate a mypackagename.spdx by running a command like the following: wget -qO - --no-check-certificate --post-file=./[mypackagename] --timeout=0 "https://domain/?mod=spdx_license_once&noCopyright=false&jsonOutput=false&fullSPDXFlag=true&packageNameInLog=[mypackagename]<https://domain/?mod=spdx_license_once&noCopyright=false&jsonOutput=false&fullSPDXFlag=true&packageNameInLog=%5bmypackagename%5d>" > [mypackagename].spdx for example: wget -qO - --no-check-certificate --post-file=./time-1.7.tar --timeout=0 "https://fossologyspdx.ist.unomaha.edu/?mod=spdx_license_once&noCopyright=false&jsonOutput=false&fullSPDXFlag=false&packageNameInLog=time-1.7.tar"; > time-1.7.tar.spdx If you have any questions, please feel free to contact me or Liang. We are happy to help. Regards, Matt Germonprez and Liang Cao -- Mutual of Omaha Associate Professor of Information Systems University of Nebraska at Omaha Vita<http://myweb.unomaha.edu/~mgermonprez/> Open Communities Lab<http://ocrl.unomaha.edu/> NSF Grant on Open Communities<http://1.usa.gov/17mbd1Z> On Fri, Feb 7, 2014 at 10:07 AM, Gobeille, Robert <[email protected]<mailto:[email protected]>> wrote: On Feb 7, 2014, at 4:14 AM, <[email protected]<mailto:[email protected]>> <[email protected]<mailto:[email protected]>> wrote: We are using Fossology on a local sever for scanning some of packages for License/copyright info. Recently we have installed Fossology+SPDX module on a local PC, and this gives spdx results as well. Spdx.org<http://Spdx.org> gives open source tools to convert .rdf to .spdx, .spdx to .rdf, .xls to.rdf etc. Reference http://spdx.org/spdx-tools/tools-from-the-spdx-workgroup We would like to know after Fossology+SPDX scans a package and gives results in sdpx format, Is there any command line tools to execute on command prompt in Local PC using localhost server running Fossology agents to get results in spdx format. ( Please note I cannot use Web Interface version of https://fossologyspdx.ist.unomaha.edu/?mod=Default because packages cannot be uploaded to public) I mean, I should be able to get results something like mypackage_name.spdx or mypackage_name.rdf which complies with SPDX format specified in spdx.org<http://spdx.org>, which I can use as an input to spdx open source tools for conversion, comparison etc. Hi Kotrappa, I'm confused why you mention that you cannot use fossologyspdx.ist.unomaha.edu<http://fossologyspdx.ist.unomaha.edu> since you have installed the spdx module on your own local machine. You shouldn't have to use the unomaha machine since you have it installed locally. Since you have installed the FOSSology+SPDX module on your local PC, then you can create spdx files (tag files). That option is the default but is specified in the "Output File Type" pull down on the SPDX Edit screen. So though we call it a .tag file, I think that is the same as the .spdx file. The command line (web api) doc is at: https://github.com/spdx-tools/fossology-spdx/wiki/Fossology-SPDX-Web-API However, this does not generate the full .spdx (tag) output. If I have not understood your question completely, please ask again. Liang Cao is the author of the SPDX module and he is on this list as well. Thanks, Bob Gobeille _______________________________________________ fossology mailing list [email protected]<mailto:[email protected]> http://lists.fossology.org/mailman/listinfo/fossology The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com
_______________________________________________ fossology mailing list [email protected] http://lists.fossology.org/mailman/listinfo/fossology
